CISM • Practice Test 20
Free CISM practice test — 15 questions with explanations. Set 20. No signup required.
Based on the exhibit, what is the most likely vulnerability that an attacker could exploit?
Refer to the exhibit. Exhibit: Network Architecture Description The network consists of three zones: External, DMZ, and Internal. The external interface connects to the internet. The DMZ hosts public-facing web servers and an email relay. The internal zone hosts database servers and application servers. A firewall separates External from DMZ, and another firewall separates DMZ from Internal. The firewall rules are: - External to DMZ: allow HTTP, HTTPS, SMTP. - DMZ to Internal: allow MySQL (3306) from web servers to database servers, and allow LDAP (389) from application servers to domain controllers. - Internal to External: allow outbound HTTP/HTTPS from application servers. - All other traffic is denied. The IDS is placed on the DMZ segment, monitoring traffic between DMZ and Internal. The IDS signatures include critical, high, and medium severity, and the action is 'alert and log'.